SUSE Package Hub - openSUSE-2024-337

Update Info

openSUSE-2024-337

Security update for chromium

Type: security

Severity: important

Issued: 2024-10-18

Description:

This update for chromium fixes the following issues:

Chromium 130.0.6723.58 (boo#1231694)

* CVE-2024-9954: Use after free in AI
* CVE-2024-9955: Use after free in Web Authentication
* CVE-2024-9956: Inappropriate implementation in Web Authentication
* CVE-2024-9957: Use after free in UI
* CVE-2024-9958: Inappropriate implementation in PictureInPicture
* CVE-2024-9959: Use after free in DevTools
* CVE-2024-9960: Use after free in Dawn
* CVE-2024-9961: Use after free in Parcel Tracking
* CVE-2024-9962: Inappropriate implementation in Permissions
* CVE-2024-9963: Insufficient data validation in Downloads
* CVE-2024-9964: Inappropriate implementation in Payments
* CVE-2024-9965: Insufficient data validation in DevTools
* CVE-2024-9966: Inappropriate implementation in Navigations

References

CVE: CVE-2024-9966
CVE: CVE-2024-9965
CVE: CVE-2024-9964
CVE: CVE-2024-9963
CVE: CVE-2024-9962
CVE: CVE-2024-9961
CVE: CVE-2024-9960
CVE: CVE-2024-9959
CVE: CVE-2024-9958
CVE: CVE-2024-9957
CVE: CVE-2024-9956
CVE: CVE-2024-9955
CVE: CVE-2024-9954
Bugzilla: 1231694 VUL-0: chromium: 130.0.6723.58 stable release

Packages

chromium-130.0.6723.58-bp156.2.41.1